Lucene search
K

5 matches found

OSV
OSV
added 2026/07/03 7:16 a.m.4 views

ALPINE-CVE-2026-8286

A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not...

8.1CVSS5.9AI score0.0052EPSS
Exploits1References1
NVD
NVD
added 2026/07/03 7:16 a.m.9 views

CVE-2026-8286

A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not...

8.1CVSS0.0052EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/07/03 6:14 a.m.8 views

CVE-2026-8286

A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not...

8.1CVSS5.9AI score0.0052EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/24 3:7 a.m.6 views

CVE-2026-41319 MailKit has STARTTLS Response Injection via unflushed stream buffer that enables SASL mechanism downgrade

MailKit is a cross-platform mail client library built on top of MimeKit. A STARTTLS Response Injection vulnerability in versions prior to 4.16.0 allows a Man-in-the-Middle attacker to inject arbitrary protocol responses across the plaintext-to-TLS trust boundary, enabling SASL authentication...

6.5CVSS5.8AI score0.00223EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/24 3:7 a.m.36 views

CVE-2026-41319 MailKit has STARTTLS Response Injection via unflushed stream buffer that enables SASL mechanism downgrade

MailKit is a cross-platform mail client library built on top of MimeKit. A STARTTLS Response Injection vulnerability in versions prior to 4.16.0 allows a Man-in-the-Middle attacker to inject arbitrary protocol responses across the plaintext-to-TLS trust boundary, enabling SASL authentication...

6.5CVSS0.00223EPSS
Exploits1References1
Rows per page
Query Builder